We are excited to bring Transform 2022 back in-person July 19 and virtually July 20 - 28. Join AI and data leaders for insightful talks and exciting networking opportunities. Register today!


According to a recent survey by Venafi, ransomware attacks spiked by 250% in the first half of 2021 alone. According to Cybersecurity Ventures, by the end of 2021, it’s estimated that every 11 seconds, an organization will be hit with a ransomware attack. These rising threats led to almost two-thirds of security decision makers (60%) declaring that ransomware should be prioritized at the same level as terrorism, echoing the U.S. Department of Justice’s assessment following the Colonial Pipeline attack earlier this year.

The survey explores how infosec leadership is responding to rapidly growing ransomware threats. Their responses are critical considering two-thirds (67%) of respondents from organizations with 500+ employees reported a ransomware attack last year — a number that rises to 80% for respondents from organizations with 3,000-4,999 employees.

The survey also found almost 1 in 10 (8%) companies that suffered a ransomware attack in the last year paid the ransom. On the flip side, 22% of those surveyed believe it is morally wrong to pay a ransom even if the attack seriously compromises critical business data or systems. However, the report shows that of those who would pay a ransom, 57% of respondents would reverse that decision if they were required to report the payment publicly.

InfoSec leaders view ransomware threats at the same level as terrorism. The title: InfoSec leaders view ransomware threats at the same level as terrorism. Australia is at 70%, U.K. is at 64%, U.S. is at 60%, France is at 58%, Benelux is at 55%, and Germany is at 54%.

Event

Transform 2022

Join us at the leading event on applied AI for enterprise business and technology decision makers in-person July 19 and virtually from July 20-28.

Register Here

And, while most organizations have multiple security controls in place that help detect and limit the impact of a ransomware attack, many of these security controls are not optimized for modern network infrastructure. Digitally transformed networks require a new approach to security, such as the use of “built-in” security controls that break the ransomware kill chain early in the attack cycle. Of the security controls respondents report using, only three fit these criteria: internal code signing, restricting macros, and restricting PowerShell scripts. Yet these three controls have the lowest adoption rates, according to the study.

More than three quarters (77%) of the organizations are committed to increasing their spend on ransomware security over the next 12 months. Given the increasing risks, it’s more important than ever that organizations shift their investment strategies to focus on ransomware protection designed for modern networks.

Data from the survey was compiled from the responses of over 1,500 IT security officers.

Read the full report by Venafi.

VentureBeat's mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Learn more about membership.

Author
Topics